prowler

mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-21 18:58:04 +00:00

Author	SHA1	Message	Date
Adrián Peña	ad6368a446	chore: add defusedxml as api dependency (#10401 )	2026-03-19 18:26:55 +01:00
Adrián Peña	3361393b7d	chore: update changelog (#10400 )	2026-03-19 17:55:18 +01:00
Sandiyo Christan	0b7a21a70c	fix(api): [security] use defusedxml to prevent XML bomb DoS in SAML metadata parsing (#10165 ) Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> Co-authored-by: Adrián Peña <adrianjpr@gmail.com>	2026-03-19 17:44:52 +01:00
Josema Camacho	872e6e239c	perf(api): replace JOINs with pre-check in threat score aggregation query (#10394 )	2026-03-19 17:30:06 +01:00
Adrián Peña	2fe92cfce3	feat(api): add check title search for finding groups (#10377 )	2026-03-19 16:48:26 +01:00
César Arroba	cece2cb87e	chore: pin Prowler version to lastest master commit on push (#10384 )	2026-03-19 14:32:38 +01:00
Adrián Peña	ab266080d0	perf(api): add trigram indexes for finding groups (#10378 )	2026-03-19 13:54:50 +01:00
Prowler Bot	4638b39ed4	chore(api): Bump version to v1.23.0 (#10393 ) Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>	2026-03-19 13:42:46 +01:00
Prowler Bot	997f9bf64a	docs: Update version to v5.21.0 (#10391 ) Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>	2026-03-19 13:40:33 +01:00
Prowler Bot	aecc234f78	chore(release): Bump version to v5.22.0 (#10389 ) Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>	2026-03-19 13:40:22 +01:00
Pepe Fagoaga	8317eff67b	chore(changelog): prepare for v5.21.0 (#10380 )	2026-03-19 11:09:51 +01:00
Rubén De la Torre Vico	5c4ee0bc48	chore(mcp): bump MCP server version to 0.5.0 (#10383 )	2026-03-19 10:47:46 +01:00
rchotacode	0f2fdcfb3f	chore(oraclecloud): Add Oracle Defense Cloud Support (#10376 ) Co-authored-by: Ronan Chota <ronan.chota@saic.com> Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com> Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>	2026-03-19 09:41:58 +00:00
Rubén De la Torre Vico	11a8873155	feat(ui): add attack path custom query skill for Lighthouse AI (#10323 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-03-18 19:35:50 +01:00
Pedro Martín	5a3475bed3	feat(compliance): add SecNumCloud 3.2 for Oracle Cloud (#10371 )	2026-03-18 12:28:38 +01:00
Pedro Martín	bc43eed736	feat(compliance): add SecNumCloud 3.2 for AlibabaCloud (#10370 )	2026-03-18 10:40:58 +01:00
Rubén De la Torre Vico	8c1e69b542	feat(mcp): add cartography schema tool for attack paths (#10321 )	2026-03-18 10:39:04 +01:00
Rubén De la Torre Vico	75c4f11475	feat(ui): add skills system infrastructure to Lighthouse AI (#10322 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-03-18 10:28:46 +01:00
Josema Camacho	1da10611e7	perf(attack-paths): reduce sync and findings memory usage with smaller batches and cursor iteration (#10359 )	2026-03-18 10:08:30 +01:00
Andoni Alonso	e8aaf5266a	chore(sdk): bump pygithub from 2.5.0 to 2.8.0 (#10353 )	2026-03-18 09:58:40 +01:00
Josema Camacho	f5f1f1ab2d	fix(attack-paths): recover graph_data_ready when scan fails during graph swap (#10354 )	2026-03-18 09:49:45 +01:00
Andoni Alonso	65e745d779	fix(sdk): skip strict CheckMetadata validators for external tool providers (#10363 )	2026-03-18 09:11:39 +01:00
Pedro Martín	907664093f	feat(compliance): add SecNumCloud 3.2 for GCP (#10364 )	2026-03-18 08:38:06 +01:00
Pedro Martín	8c2e2332d7	feat(compliance): add SecNumCloud 3.2 for Azure (#10358 )	2026-03-18 08:28:40 +01:00
tejas_0007	cb03573599	feat(compliance): Add RBI Cyber Security Framework for GCP (#10339 ) Co-authored-by: Tejas Saubhage <tsaubhage0007@gmail.com> Co-authored-by: pedrooot <pedromarting3@gmail.com>	2026-03-17 15:55:30 +01:00
Pedro Martín	b7571abaeb	fix(dashboard): add RBI compliance dashboard support for Azure (#10360 )	2026-03-17 15:42:39 +01:00
lydiavilchez	4f93a89d1b	feat(ui): add Google Workspace provider integration (#10333 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-03-17 13:28:28 +01:00
Sandiyo Christan	88ce188103	fix(api): [security] use psycopg2.sql to safely compose DDL in PostgresEnumMigration (#10166 ) Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> Co-authored-by: Adrián Peña <adrianjpr@gmail.com> Co-authored-by: Pepe Fagoaga <pepe@prowler.com>	2026-03-17 13:24:24 +01:00
Pawan Gambhir	df680ef277	fix(route53): resolve false positive in dangling IP check (#9952 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-03-17 12:02:48 +01:00
Andoni Alonso	451071d694	feat(image): add image provider to UI (#10167 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>	2026-03-17 10:53:37 +01:00
Zakir Jiwani	887a20f06e	feat: CORS_ALLOWED_ORIGINS configurable via environment variable (#10355 ) Co-authored-by: Pepe Fagoaga <pepe@prowler.com>	2026-03-17 09:55:06 +01:00
Pedro Martín	712da2cf98	feat(ui): Add CloudTrail Events tab to detail cards (#10320 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-03-17 09:45:29 +01:00
Josema Camacho	6a4278ed4d	fix(docs): setting a couple of API PRs in the next release instead of 5.20 (#10357 )	2026-03-17 09:00:56 +01:00
Pepe Fagoaga	febd2c8fdb	fix(ci): checkout upstream repo for tests (#10356 )	2026-03-17 08:47:12 +01:00
Josema Camacho	787a339cd9	feat(attack-paths): scans add tenant and provider related labels to nodes (#10308 )	2026-03-16 16:31:15 +01:00
shria :))	1cf6eaa0b7	feat(github): add organization_repository_deletion_limited check (#10185 ) Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>	2026-03-16 16:22:36 +01:00
Josema Camacho	b311456160	fix(security): Ignore cryptography vulnerability until we can upgrade it (#10345 )	2026-03-16 13:19:37 +01:00
Josema Camacho	ad02801c74	refactor(attack-paths): complete migration to private graph labels and properties (phase 2) (#10268 )	2026-03-16 12:34:58 +01:00
Daniel Barranquero	361f8548bf	feat(azure): add 'entra_conditional_access_policy_require_mfa_for_admin_portals' check and update compliance (#10330 )	2026-03-16 12:14:58 +01:00
Prowler Bot	2b7b2623c5	feat(aws): Update regions for AWS services (#10341 ) Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>	2026-03-16 12:02:57 +01:00
Pepe Fagoaga	e9860f7002	chore: zizmor in pre-commit (#10343 )	2026-03-16 11:32:06 +01:00
Alejandro Bailo	b509fdf562	chore(ui): add changelog entry for org dropdown actions (#10317 ) (#10342 )	2026-03-16 11:03:39 +01:00
Pedro Martín	e197ad6fb0	chore(gitignore): add .claude (#10340 )	2026-03-16 10:48:15 +01:00
Hugo Pereira Brito	c9284f8003	chore(models): add pydantic validators for `CheckMetadata` (#8583 ) Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com> Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com> Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>	2026-03-16 10:36:08 +01:00
Alejandro Bailo	4cd3b09818	feat(ui): add organization-specific actions to providers table dropdown (#10317 )	2026-03-16 10:32:12 +01:00
Alejandro Bailo	22f79edec5	refactor(ui): replace HeroUI Snippet with CodeSnippet component (#10319 )	2026-03-13 16:31:39 +01:00
dependabot[bot]	0790619020	chore(deps-dev): bump multipart from 1.3.0 to 1.3.1 (#10331 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Pepe Fagoaga <pepe@prowler.com>	2026-03-13 12:36:16 +01:00
Daniel Barranquero	9df06095eb	chore(azure): update ResourceType and Categories for entra metadata (#10334 )	2026-03-13 12:13:47 +01:00
Pedro Martín	3672d19c6a	feat(mutelisting): add mute button inside finding detailed view (#10303 )	2026-03-13 11:45:10 +01:00
Rubén De la Torre Vico	ebc792e578	chore(m365): enhance metadata for `entra` service (#9682 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-03-13 11:35:41 +01:00

1 2 3 4 5 ...

7924 Commits